CVE-2024-13961: Avast Cleanup Premium TuneupSvc Link Following Local Privilege Escalation Vulnerability
First published: Fri May 09 2025(Updated: )
Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU (time-of-check to time-of-use) attack.
Credit: security@nortonlifelock.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avast CleanUp |
Remedy
Update to Avast Cleanup Premium 24.3.17165.19178 or newer
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-13961?
CVE-2024-13961 is classified as a high severity local privilege escalation vulnerability.
How do I fix CVE-2024-13961?
To mitigate CVE-2024-13961, update Avast Cleanup Premium to the latest version provided by the vendor.
Who is affected by CVE-2024-13961?
CVE-2024-13961 affects Windows 10 Pro x64 users running Avast Cleanup Premium Version 24.2.16593.17810.
What type of attacks can occur due to CVE-2024-13961?
CVE-2024-13961 allows local attackers to escalate privileges and execute arbitrary code with SYSTEM-level access.
What is the primary vector for exploiting CVE-2024-13961?
The primary vector for exploiting CVE-2024-13961 is through creating a symbolic link.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/title
- agent/weakness
- agent/remedy
- agent/description
- agent/type
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/avast
- canonical/avast cleanup